icedid | d25fa3f575f1e70fc0f5482444fb5db39220e03e3e24ca48b2a8ed7727eb79b1 | Triage

Sharing

General

Target

JaffaCakes118_d25fa3f575f1e70fc0f5482444fb5db39220e03e3e24ca48b2a8ed7727eb79b1
Size

490KB
Sample

241222-dafnva1jgp
MD5

76ea029bcf0d9b5a92e8a2defb924a2b
SHA1

c758e61d8290f8771251765be77d6101bd5f96ac
SHA256

d25fa3f575f1e70fc0f5482444fb5db39220e03e3e24ca48b2a8ed7727eb79b1
SHA512

33a2e86c2d1d91a8250517b0ada9204a6d6d418e1ee1e3672afa2d1c125d5c8ca2ffd9a19280a62fe09342fb48eb28cda664db9c117b2ab1c5ae0f09d8ec4b74
SSDEEP

12288:mFnmEQb6xK6EOcEELeBdUDBBe6pLtzPhGHUaRq:knmj6xK1y3Ik6TZGRq

Score

10^/10

icedid 3467965077 banker loader trojan

Malware Config

Extracted

Family

icedid

Campaign

3467965077

C2

firenicatrible.com

Targets

- Target
  
  JaffaCakes118_d25fa3f575f1e70fc0f5482444fb5db39220e03e3e24ca48b2a8ed7727eb79b1
- Size
  
  490KB
- MD5
  
  76ea029bcf0d9b5a92e8a2defb924a2b
- SHA1
  
  c758e61d8290f8771251765be77d6101bd5f96ac
- SHA256
  
  d25fa3f575f1e70fc0f5482444fb5db39220e03e3e24ca48b2a8ed7727eb79b1
- SHA512
  
  33a2e86c2d1d91a8250517b0ada9204a6d6d418e1ee1e3672afa2d1c125d5c8ca2ffd9a19280a62fe09342fb48eb28cda664db9c117b2ab1c5ae0f09d8ec4b74
- SSDEEP
  
  12288:mFnmEQb6xK6EOcEELeBdUDBBe6pLtzPhGHUaRq:knmj6xK1y3Ik6TZGRq
Score

10^/10

icedid 3467965077 banker loader trojan
- IcedID, BokBot
  IcedID is a banking trojan capable of stealing credentials.
  trojan banker icedid
- Icedid family
  icedid
behavioral1 behavioral2

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

icedid3467965077bankerloadertrojan

behavioral2

icedid3467965077bankerloadertrojan